Exploit the possiblities
Showing 1 - 17 of 17 RSS Feed

Files Date: 2013-10-03

Mandriva Linux Security Advisory 2013-245
Posted Oct 3, 2013
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2013-245 - Integer overflow in kbdint.c in mod_sftp in ProFTPD 1.3.4d and 1.3.5r3 allows remote attackers to cause a denial of service (memory consumption) via a large response count value in an authentication request, which triggers a large memory allocation. The updated packages have been patched to correct this issue.

tags | advisory, remote, denial of service, overflow
systems | linux, mandriva
advisories | CVE-2013-4359
MD5 | 343a9700f10f1b5d4e981c1ee6a750c5
Lynis Auditing Tool 1.3.1
Posted Oct 3, 2013
Authored by Michael Boelen | Site cisofy.com

Lynis is an auditing tool for Unix (specialists). It scans the system and available software to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes. This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems.

Changes: This release has several generic updates, including adjustments of text and fixes in the detection of binaries, including performance tweaks. Several minor adjustments have been implemented to improve several audit checks.
tags | tool, scanner
systems | unix
MD5 | b6a18b74d07d274a76226945061a6e97
Zenphoto 1.4.5.2 Cross Site Scripting / SQL Injection
Posted Oct 3, 2013
Authored by Sojobo Dev Team

Zenphoto version 1.4.5.2 suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | b49ecafa1d51a1020bfbbe9d367663b3
EMC Atmos Unauthenticated Database Access
Posted Oct 3, 2013
Site emc.com

Atmos nodes prior to version 2.1.4 allow connections to the remote PostgreSQL database server using a default user account with no password. The PostgreSQL database stores system information data used to administer Atmos nodes.

tags | advisory, remote
advisories | CVE-2013-3279
MD5 | 99d998bb1b088a80f25328d699f0464c
Citrix Netscaler 10.0 Denial Of Service
Posted Oct 3, 2013
Authored by S. Viehbock | Site sec-consult.com

A vulnerability was found in the nsconfigd daemon (TCP port 3008/SSL and 3010). This daemon can be crashed by sending a specially crafted message. No prior authentication is necessary. A watchdog daemon (pitboss) automatically restarts nsconfigd after the first six crashes and then reboots the appliance. By sending just a few packets the appliance can be kept in a constant reboot loop resulting in total loss of availability. The vulnerabilities have been verified to exist in Citrix NetScaler VPX (Build 70.7.nc), which was the most recent version at the time of discovery.

tags | advisory, tcp, vulnerability
MD5 | 5db1d933932e69032c28e640b2a8e8aa
HP Security Bulletin HPSBPI02892
Posted Oct 3, 2013
Authored by HP | Site hp.com

HP Security Bulletin HPSBPI02892 - Potential security vulnerabilities have been identified with certain HP FutureSmart LaserJet printers. The vulnerabilities might lead to weak encryption of PDF documents or local disclosure of scanned information. Revision 1 of this advisory.

tags | advisory, local, vulnerability
advisories | CVE-2013-4828, CVE-2013-4829
MD5 | d5f3eb690210ab67b675e759921c56b1
Aanval 7.1 Build 70151 SQL Injection / Cross Site Scripting
Posted Oct 3, 2013
Authored by xistence

Aanval version 7.1 build 70151 suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | a86fd138da920f8952a34b05891fce2a
WebAssist PowerCMS PHP Cross Site Scripting
Posted Oct 3, 2013
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

WebAssist PowerCMS PHP suffers from multiple cross site scripting vulnerabilities.

tags | exploit, php, vulnerability, xss
MD5 | a251112070ceca763628e11672632451
Apple Security Advisory 2013-10-03-1
Posted Oct 3, 2013
Authored by Apple | Site apple.com

Apple Security Advisory 2013-10-03-1 - OS X version 10.8.5 Supplemental Update is now available and addresses a logic issue in Directory Service's verification of authentication credentials.

tags | advisory
systems | apple, osx
advisories | CVE-2013-5163
MD5 | 927e1782e6ee8dbdfaac71d11b52cfd3
SilverStripe Framework CMS 3.0.5 Cross Site Scripting
Posted Oct 3, 2013
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

SilverStripe Framework CMS version 3.0.5 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 299e7e959fe0c8ecdd1a780e5a5d4424
Hide Photo+Video Safe 1.6 LFI / XSS
Posted Oct 3, 2013
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

Hide Photo+Video Safe version 1.6 suffers from local file inclusion and cross site scripting vulnerabilities.

tags | exploit, local, vulnerability, xss, file inclusion
MD5 | a20ef796a7acd410f6bc20efd6ed12bb
ZeroShell 2.0 RC3 Command Injection / Cross Site Scripting
Posted Oct 3, 2013
Authored by xistence

ZeroShell version 2.0 RC3 suffers from command injection and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 1b886fe089036cb279eae1e1dcf4def1
Security Guard CMS QT 4.7.3 Buffer Overflow
Posted Oct 3, 2013
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

Security Guard CMS QT version 4.7.3 suffers from a local stack buffer overflow vulnerability.

tags | advisory, overflow, local
MD5 | 5766348a5433ee235bebcaf299cb16c1
elproLOG MONITOR WebAccess 2.1 XSS / SQL Injection
Posted Oct 3, 2013
Authored by Benjamin Kunz Mejri | Site vulnerability-lab.com

elproLOG MONITOR WebAccess version 2.1 suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
MD5 | e76690e1e2ef0570a7ef2212f65e78eb
WordPress Slimstat Ex Code Execution
Posted Oct 3, 2013
Authored by wantexz

WordPress Slimstat Ex plugin remote PHP arbitrary code execution exploit.

tags | exploit, remote, arbitrary, php, code execution
MD5 | 0c0ff135bea6ee4a35148456fd728d02
Evince PDF Reader 2.32.0.145 / 3.4.0 Denial Of Service
Posted Oct 3, 2013
Authored by Deva

Evince PDF Reader versions 2.32.0.145 (Windows) and 3.4.0 (Linux) suffer from a denial of service vulnerability.

tags | exploit, denial of service
systems | linux, windows
MD5 | 0f7d6565766c6a30241c8fabd9d59c70
WordPress SEO Watcher Remote Code Execution
Posted Oct 3, 2013
Authored by wantexz

WordPress SEO Watcher plugin remote code execution exploit.

tags | exploit, remote, code execution
MD5 | d45cc509d9499d4561f585900b63e0a5
Page 1 of 1
Back1Next

File Archive:

November 2017

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    22 Files
  • 2
    Nov 2nd
    28 Files
  • 3
    Nov 3rd
    10 Files
  • 4
    Nov 4th
    1 Files
  • 5
    Nov 5th
    5 Files
  • 6
    Nov 6th
    15 Files
  • 7
    Nov 7th
    15 Files
  • 8
    Nov 8th
    13 Files
  • 9
    Nov 9th
    9 Files
  • 10
    Nov 10th
    9 Files
  • 11
    Nov 11th
    3 Files
  • 12
    Nov 12th
    2 Files
  • 13
    Nov 13th
    15 Files
  • 14
    Nov 14th
    17 Files
  • 15
    Nov 15th
    19 Files
  • 16
    Nov 16th
    15 Files
  • 17
    Nov 17th
    19 Files
  • 18
    Nov 18th
    0 Files
  • 19
    Nov 19th
    0 Files
  • 20
    Nov 20th
    0 Files
  • 21
    Nov 21st
    0 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close